Host Agent
by SAP
CVEs (14)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-15297 | Hig | 0.49 | 7.5 | 0.03 | Oct 16, 2017 | SAP Hostcontrol does not require authentication for the SOAP SAPControl endpoint. This is SAP Security Note 2442993. | ||
| CVE-2024-47595 | 0.00 | — | 0.00 | Nov 12, 2024 | An attacker who gains local membership to sapsys group could replace local files usually protected by privileged access. On successful exploitation the attacker could cause high impact on confidentiality and integrity of the application. | |||
| CVE-2023-36926 | 0.00 | — | 0.00 | Aug 8, 2023 | Due to missing authentication check in SAP Host Agent - version 7.22, an unauthenticated attacker can set an undocumented parameter to a particular compatibility value and in turn call read functions. This allows the attacker to gather some non-sensitive information about the… | |||
| CVE-2023-27498 | 0.00 | — | 0.01 | Mar 14, 2023 | SAP Host Agent (SAPOSCOL) - version 7.22, allows an unauthenticated attacker with network access to a server port assigned to the SAP Start Service to submit a crafted request which results in a memory corruption error. This error can be used to reveal but not modify any… | |||
| CVE-2023-24523 | 0.00 | — | 0.00 | Feb 14, 2023 | An attacker authenticated as a non-admin user with local access to a server port assigned to the SAP Host Agent (Start Service) - versions 7.21, 7.22, can submit a crafted ConfigureOutsideDiscovery request with an operating system command which will be executed with… | |||
| CVE-2023-0012 | 0.00 | — | 0.00 | Jan 10, 2023 | In SAP Host Agent (Windows) - versions 7.21, 7.22, an attacker who gains local membership to SAP_LocalAdmin could be able to replace executables with a malicious file that will be started under a privileged account. Note that by default all user members of SAP_LocaAdmin are… | |||
| CVE-2022-35295 | 0.00 | — | 0.01 | Sep 13, 2022 | In SAP Host Agent (SAPOSCOL) - version 7.22, an attacker may use files created by saposcol to escalate privileges for themselves. | |||
| CVE-2022-29612 | 0.00 | — | 0.01 | Jun 14, 2022 | SAP NetWeaver, ABAP Platform and SAP Host Agent - versions KERNEL 7.22, 7.49, 7.53, 7.77, 7.81, 7.85, 7.86, 7.87, 7.88, 8.04, KRNL64NUC 7.22, 7.22EXT, 7.49, KRNL64UC 7.22, 7.22EXT, 7.49, 7.53, 8.04, SAPHOSTAGENT 7.22, allows an authenticated user to misuse a function of… | |||
| CVE-2022-29616 | 0.00 | — | 0.01 | May 11, 2022 | SAP Host Agent, SAP NetWeaver and ABAP Platform allow an attacker to leverage logical errors in memory management to cause a memory corruption. | |||
| CVE-2022-28774 | 0.00 | — | 0.00 | May 11, 2022 | Under certain conditions, the SAP Host Agent logfile shows information which would otherwise be restricted. | |||
| CVE-2020-6234 | 0.00 | — | 0.04 | Apr 14, 2020 | SAP Host Agent, version 7.21, allows an attacker with admin privileges to use the operation framework to gain root privileges over the underlying operating system, leading to Privilege Escalation. | |||
| CVE-2020-6186 | 0.00 | — | 0.01 | Feb 12, 2020 | SAP Host Agent, version 7.21, allows an attacker to cause a slowdown in processing of username/password-based authentication requests of the SAP Host Agent, leading to Denial of Service. | |||
| CVE-2020-6183 | 0.00 | — | 0.01 | Feb 12, 2020 | SAP Host Agent, version 7.21, allows an unprivileged user to read the shared memory or write to the shared memory by sending request to the main SAPOSCOL process and receive responses that may contain data read with user root privileges e.g. size of any directory, system… | |||
| CVE-2014-8592 | 0.00 | — | 0.02 | Nov 4, 2014 | Unspecified vulnerability in SAP Host Agent, as used in SAP NetWeaver 7.02 and 7.3, allows remote attackers to cause a denial of service (process termination) via a crafted request. |
- risk 0.49cvss 7.5epss 0.03
SAP Hostcontrol does not require authentication for the SOAP SAPControl endpoint. This is SAP Security Note 2442993.
- CVE-2024-47595Nov 12, 2024risk 0.00cvss —epss 0.00
An attacker who gains local membership to sapsys group could replace local files usually protected by privileged access. On successful exploitation the attacker could cause high impact on confidentiality and integrity of the application.
- CVE-2023-36926Aug 8, 2023risk 0.00cvss —epss 0.00
Due to missing authentication check in SAP Host Agent - version 7.22, an unauthenticated attacker can set an undocumented parameter to a particular compatibility value and in turn call read functions. This allows the attacker to gather some non-sensitive information about the…
- CVE-2023-27498Mar 14, 2023risk 0.00cvss —epss 0.01
SAP Host Agent (SAPOSCOL) - version 7.22, allows an unauthenticated attacker with network access to a server port assigned to the SAP Start Service to submit a crafted request which results in a memory corruption error. This error can be used to reveal but not modify any…
- CVE-2023-24523Feb 14, 2023risk 0.00cvss —epss 0.00
An attacker authenticated as a non-admin user with local access to a server port assigned to the SAP Host Agent (Start Service) - versions 7.21, 7.22, can submit a crafted ConfigureOutsideDiscovery request with an operating system command which will be executed with…
- CVE-2023-0012Jan 10, 2023risk 0.00cvss —epss 0.00
In SAP Host Agent (Windows) - versions 7.21, 7.22, an attacker who gains local membership to SAP_LocalAdmin could be able to replace executables with a malicious file that will be started under a privileged account. Note that by default all user members of SAP_LocaAdmin are…
- CVE-2022-35295Sep 13, 2022risk 0.00cvss —epss 0.01
In SAP Host Agent (SAPOSCOL) - version 7.22, an attacker may use files created by saposcol to escalate privileges for themselves.
- CVE-2022-29612Jun 14, 2022risk 0.00cvss —epss 0.01
SAP NetWeaver, ABAP Platform and SAP Host Agent - versions KERNEL 7.22, 7.49, 7.53, 7.77, 7.81, 7.85, 7.86, 7.87, 7.88, 8.04, KRNL64NUC 7.22, 7.22EXT, 7.49, KRNL64UC 7.22, 7.22EXT, 7.49, 7.53, 8.04, SAPHOSTAGENT 7.22, allows an authenticated user to misuse a function of…
- CVE-2022-29616May 11, 2022risk 0.00cvss —epss 0.01
SAP Host Agent, SAP NetWeaver and ABAP Platform allow an attacker to leverage logical errors in memory management to cause a memory corruption.
- CVE-2022-28774May 11, 2022risk 0.00cvss —epss 0.00
Under certain conditions, the SAP Host Agent logfile shows information which would otherwise be restricted.
- CVE-2020-6234Apr 14, 2020risk 0.00cvss —epss 0.04
SAP Host Agent, version 7.21, allows an attacker with admin privileges to use the operation framework to gain root privileges over the underlying operating system, leading to Privilege Escalation.
- CVE-2020-6186Feb 12, 2020risk 0.00cvss —epss 0.01
SAP Host Agent, version 7.21, allows an attacker to cause a slowdown in processing of username/password-based authentication requests of the SAP Host Agent, leading to Denial of Service.
- CVE-2020-6183Feb 12, 2020risk 0.00cvss —epss 0.01
SAP Host Agent, version 7.21, allows an unprivileged user to read the shared memory or write to the shared memory by sending request to the main SAPOSCOL process and receive responses that may contain data read with user root privileges e.g. size of any directory, system…
- CVE-2014-8592Nov 4, 2014risk 0.00cvss —epss 0.02
Unspecified vulnerability in SAP Host Agent, as used in SAP NetWeaver 7.02 and 7.3, allows remote attackers to cause a denial of service (process termination) via a crafted request.